75 lines
2.3 KiB
TypeScript
75 lines
2.3 KiB
TypeScript
import type { ClawdbotConfig } from "../config/config.js";
|
|
import { normalizeE164 } from "../utils.js";
|
|
import type { MsgContext } from "./templating.js";
|
|
|
|
export type CommandAuthorization = {
|
|
isWhatsAppSurface: boolean;
|
|
ownerList: string[];
|
|
senderE164?: string;
|
|
isAuthorizedSender: boolean;
|
|
from?: string;
|
|
to?: string;
|
|
};
|
|
|
|
export function resolveCommandAuthorization(params: {
|
|
ctx: MsgContext;
|
|
cfg: ClawdbotConfig;
|
|
commandAuthorized: boolean;
|
|
}): CommandAuthorization {
|
|
const { ctx, cfg, commandAuthorized } = params;
|
|
const surface = (ctx.Surface ?? "").trim().toLowerCase();
|
|
const from = (ctx.From ?? "").replace(/^whatsapp:/, "");
|
|
const to = (ctx.To ?? "").replace(/^whatsapp:/, "");
|
|
const hasWhatsappPrefix =
|
|
(ctx.From ?? "").startsWith("whatsapp:") ||
|
|
(ctx.To ?? "").startsWith("whatsapp:");
|
|
const looksLikeE164 = (value: string) =>
|
|
Boolean(value && /^\+?\d{3,}$/.test(value.replace(/[^\d+]/g, "")));
|
|
const inferWhatsApp =
|
|
!surface &&
|
|
Boolean(cfg.whatsapp?.allowFrom?.length) &&
|
|
(looksLikeE164(from) || looksLikeE164(to));
|
|
const isWhatsAppSurface =
|
|
surface === "whatsapp" || hasWhatsappPrefix || inferWhatsApp;
|
|
|
|
const configuredAllowFrom = isWhatsAppSurface
|
|
? cfg.whatsapp?.allowFrom
|
|
: undefined;
|
|
const allowFromList =
|
|
configuredAllowFrom?.filter((entry) => entry?.trim()) ?? [];
|
|
const allowAll =
|
|
!isWhatsAppSurface ||
|
|
allowFromList.length === 0 ||
|
|
allowFromList.some((entry) => entry.trim() === "*");
|
|
|
|
const senderE164 = normalizeE164(
|
|
ctx.SenderE164 ?? (isWhatsAppSurface ? from : ""),
|
|
);
|
|
const ownerCandidates =
|
|
isWhatsAppSurface && !allowAll
|
|
? allowFromList.filter((entry) => entry !== "*")
|
|
: [];
|
|
if (isWhatsAppSurface && !allowAll && ownerCandidates.length === 0 && to) {
|
|
ownerCandidates.push(to);
|
|
}
|
|
const ownerList = ownerCandidates
|
|
.map((entry) => normalizeE164(entry))
|
|
.filter((entry): entry is string => Boolean(entry));
|
|
|
|
const isOwner =
|
|
!isWhatsAppSurface ||
|
|
allowAll ||
|
|
ownerList.length === 0 ||
|
|
(senderE164 ? ownerList.includes(senderE164) : false);
|
|
const isAuthorizedSender = commandAuthorized && isOwner;
|
|
|
|
return {
|
|
isWhatsAppSurface,
|
|
ownerList,
|
|
senderE164: senderE164 || undefined,
|
|
isAuthorizedSender,
|
|
from: from || undefined,
|
|
to: to || undefined,
|
|
};
|
|
}
|